A new malware named Sarwent has raised cybersecurity threats with its ability to open a backdoor into RDP port on targeted systems. The malware then allows hackers to create an account on Windows, and execute commands via the command prompt.
The backdoor also remains open even after deleting and even allows new users to change settings for the firewall. Amidst the rising access to RDPs in enterprises globally, the new malware promises to become a big challenge for security agencies. The tactic of gaining access to Windows machines via remote protocol has increasingly come under attacks, as the new malware promises easy access to corporate security networks among others to cybercriminals.